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EVIDENCING INDICIA OF VALUE USING 
SECRET KEY CRYPTOGRAPHY 



CROSS-REFERENCE TO RELATED APPLICATIONS 

The present invention is related to co-pending U.S. Patent Application Serial No. 
entitled "Evidencing and Verifying Indicia Of Value Using Secret Key Cryptography," which 
is assigned to the assignee of the present application and filed on the same date as the 
5 present application. 

FIELD OF THE INVENTION 

The present invention relates to Internet postage solutions, and more particularly to 
evidencing and verifying any type of indicia indicating the value of goods or services using 
1 0 secret key cryptography. 

BACKGROUND OF THE INVENTION 

Systems for allowing consumers to print postage indicia on mail, rather than 
purchasing stamps from a post office, are well-known. An example of such a system is an 

15 Internet postage system solution that was developed hy the assignee of the present 

application. As shown in FIG. 1, the system includes a United States Postal Service (USPS) 
certificate authority 10, an operations center 12, a postage generating device 14 coupled 
between a user's PC 16 and a printer 18, and multiple USPS distribution centers 20, which 
also act as postage verifiers upon receipt of the mail. 

20 A combination of software running on the user's PC 16 and the postage generating 
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device 14 enables the user to purchase postage from the operations center 12 via the Internet 
using a variety of payment options. Once obtained, the postage is secured and stored in the 
postage generating device 14. The user may then print a stamp in the form of a USPS- 
approved information based indicia (IBI) 22 onto envelopes, labels, or directly onto mail 

5 pieces while also printing the destination and return addresses. The IBI 22 is printed as a 2- 

D barcode that typically includes various information including the name of the user, the ID 
of the device, the amount of postage remaining, the zip code of the destination, and the date. 
Since digital imaging, printing, photocopying, and scanning technology make it fairly easy 
to counterfeit the IBI 22, cryptographic methods, such as asymmetric public key 

1 0 cryptography, have been employed to generate and validate the IBI 22. In the prior art 

system shown in FIG. 1, for example, the certificate authority 10 transfers a digital 
certificate, which is a digitally signed public key, and a certificate ID to the postage 
generating device 14 via the operations center 12. When generating the IBI 22, the postage 
generating device 14 uses an internally generated private key and the public key to digitally 

1 5 sign the indicia, thereby creating a digital signature. The digital signature and the certificate 

ID are then included in the IBI 22. 

After printing the stamp and applying it to the mail piece, the mail piece is dropped 
in a local mailbox. The local post office then transfers the mail to a local or originating 
distribution center 20a. The originating distribution center 20a scans the IBI 22 using a 

20 barcode scanner to read the information on the stamp including the certificate ID and the 

digital signature. The originating distribution center 20a uses the certificate ID to request 
from USPS authorization center 10 the same digital certificate used to sign the indicia in 
order to verify whether the IBI 22 is acceptable or fraudulent. All mail pieces with 
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acceptable IBI's 22 are then sorted by the first three digits of the zip code to determine the 
destination region. The sorted mail is then transferred from the origination distribution 
center 20a to the respective destination distribution center 20b located in the destination 
region. The destination distribution center 20b then finishes sorting the mail based on 

5 remaining digits of the zip code and the mail is delivered. 

Many variations exist to the above scheme for evidencing and verifying postage. For 
example, US Patent 5,982,896 describes a symmetric fixed key set approach whereby 
instead of using a private key for each postage generating device 14, a set of keys is created 
where each key in the set is shared by multiple postage generating devices 14. In addition, 

1 0 the keys are made valid for only a limited amount of time to minimize the harm created by 

the theft of any of the keys and to limit the time for key attack. 

Generating time-limited keys, however, requires that new keys be generated 
periodically and distributed to the postage generating devices 14. Because the step of 
distributing the keys typically occurs over the Internet or a private communications link, 

15 security for the keys becomes paramount. It is also important to ensure that only authorized 

devices use those keys. 

The method described in Patent 5,982,896 for securing the keys has several 
disadvantages. One disadvantage is that the set of the shared keys used by the postage 
generating devices 14 are downloaded to the originating distribution centers 20 or other 

20 postage verifier. The shared keys are individually identified by pointers, which are also 

downloaded to the postage verifier, but are not cryptographically protected. Thus, the 
postage verifier has in its possession the entire set of cryptographic keys used by the postage 
generating devices 14. This fact makes the postage verifier a single point of attack: if the 
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verifier is broken into, a perpetrator may easily impersonate all postage generating devices 
14 in the postal system. 

Accordingly, what is needed is an improved method for evidencing and verifying 
postage indicia. The present invention addresses such a need. 

5 

SUMMARY OF THE INVENTION 

if* 

The present invention provides a method and system for dispensing and evidencing 
indicia by an indicia generating device in a system having a plurality of indicia generating 
devices that have been divided into n groups. Each of the indicia generating devices 

1 0 generates and prints indicia on a media that is to be received at a plurality of establishments, 

wherein the establishments are associated with different geographic designations. The 
method and system include receiving a plurality of verification keys, wherein each one of 
the received verification keys is encrypted as a function of a respective geographic 
designation. A plurality of key IDs are also received, where each one of the key IDs is 

1 5 associated with on of the verification keys and is encrypted as a function of the same 

geographic designation used to encrypt the corresponding verification key. In response to 
receiving a request to generate an indicium for a media destined for a particular one of the 
establishments, the indicia generating device evidences the indicium by generating one of 
the verification keys and the corresponding key ID assigned to indicia generating device' s 

20 group based on the geographic designation associated with the particular establishment, and 

using the generated verification key to create a digital signature, and digitally signing the 
indicia by including the digital signature and the generated key ID in the indicia. 

In one embodiment, the method and system are used to generate and print indicia on 
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media such as tickets, coupons, and the like that will be received by establishments, such as 
movie theatres and restaurants, for instance. In the preferred embodiment, however, the 
method and system are used to generate and print indicia for postage on mail that is to be 
received at a plurality of distribution centers. In this embodiment, the indicia printed on the 

5 mail is preferably verified at destination distribution centers, but may also be verified at an 

originating distribution centers. 

According to the preferred embodiment of the method and system disclosed herein, 
postage validation is now performed at destination distribution centers, rather than at 
originating distribution centers, and the verification keys, which are encrypted as a function 

10 of the destination, are only distributed to the corresponding distribution centers. Thus, even 

if a destination center were broken into, the perpetrator would only be able to forge postal 
indicia for mail pieces destined for the particular destination. In addition, the key ID is also 
encrypted so that even if a perpetrator were to crack a verification key, the perpetrator would 
still have a problem identifying which verification key was obtained. In order to forge the 

1 5 indicia, the perpetrator must possess two keys, rather than one, a secret key that the PGD 

used to compute the key ID, and the verification key itself. 

BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 is a block diagram illustrating a prior art Internet postage system. 
20 FIG. 2 is a block diagram illustrating a postage evidencing and verification system in 

accordance with a preferred embodiment of the present invention. 

FIG. 3 is a flow chart illustrating the process of evidencing payment of postage using 
secret key cryptography in the evidencing and verification system of the present invention. 

1817P -5- 



FIG. 4 is a flow chart illustrating in detail the process the KDC uses to generate and 
distribute cryptographic keys for postage evidencing and verification in accordance with the 
present invention. 

FIG. 5 is a flow chart illustrating the process of dispensing and evidencing postage 
5 indicia within the postage generating devices in accordance with a preferred embodiment of 

the present invention. 

FIG. 6 is a flow chart illustrating the process of verifying postage indicia at a 
plurality of postal distribution centers in accordance with the present invention. 

10 DETAILED DESCRIPTION 

The present invention relates to using key cryptography for evidencing and verifying 
postage. The following description is presented to enable one of ordinary skill in the art to 
make and use the invention and is provided in the context of a patent application and its 
requirements. Various modifications to the preferred embodiment and the generic principles 

15 and features described herein will be readily apparent to those skilled in the art. Thus, the 

present invention is not intended to be limited to the embodiments shown but is to be 
accorded the widest scope consistent with the principles and features described herein. 
FIG. 2 is a block diagram illustrating a postage evidencing and verification system in 
accordance with a preferred embodiment of the present invention, where like components 

20 from FIG. 1 have like reference numerals. In a preferred embodiment, the system includes a 

key distribution center 24, a plurality of postage generating devices (PGDs) 14, and multiple 
USPS distribution centers 20. The PGDs 14 may be implemented as a computing device 
separate from the PC 16 (FIG. 1), as software running on the PC 16, or any processing 
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device, such as a cellphone or PDA, or any combination of the two. The function of the key 
distribution center 24 is to provide the cryptographic keys used by the PGDs 14 to evidence 
postage, and used by the distribution centers 20 to verify the postage. In a preferred 
embodiment, the key distribution center 24 distributes the cryptographic keys to the PGDs 
14 and to the distribution centers 20 via a telecommunications network, such as the Internet 
or private link, although other types of distribution methods may also be used. In a 
preferred embodiment, the key distribution center (KDC) 24 authenticates and distributes 
the keys via asymmetric encryption to ensure the privacy of the keys and that only 
authorized devices receive the keys. The KDC 24 may be the USPS certificate authority, or 

other third party service. 

FIG. 3 is a flow chart illustrating the process of evidencing payment of postage using 
secret key cryptography in the evidencing and verification system of the present invention. 
Referring to both FIGS. 2 and 3, the process begins by the KDC 24 dividing the PDG's into 
n groups 26, G u i = 1... .n, in step 28. The KDC 24 then in step 30 assigns a set of 
verification keys 21, Vj, to each PGD group 26, where each verification key in the set is 
encrypted as a function of one of the destination regions. In a preferred embodiment, each 
destination region corresponds to a zip code region, so the number of verification keys 
assigned to each PDG group 26 depends on the number of existing zip code regions (shown 
in Fig. 2 as Destl . . .Destx). 

The KDC 24 also assigns in step 32 a set of key ID's 23, Ii, to each PDG group 26, 
where each key ID in the set is associated with one of the assigned verification keys and is 
encrypted as a function of the same destination region used to encrypt the corresponding 
verification key. Referring to Fig. 2, the result of steps 30 and 32 is that the column of 
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verification keys 21 and key ID's 23 {Vi and Ii} are assigned to PDG group Gi, the column 
of verification keys and key ID's {Vi and Gi} are assigned to PDG group G i5 and so on. 

Referring again to FIG. 3, in a preferred embodiment, it is also required that postal 
verification of the postage indicia be performed at the plurality of destinations regions, 

5 rather than the originating region, in step 34. The postage verification may be performed at 

the destination distribution centers 20b or by a third party verifier that is in remote 
communication with the KDC 24. 

After assigning the verification keys 21 to the PGD groups 26, the KDC 24 
distributes to each distribution center the sets of verification keys 21 and key ID's 23 that 

1 0 were encrypted as a function of the corresponding destination region in step 36. Thus, in 

Fig. 2 for example, all the verification keys 21 and key ID's 23, V Destl and I Destl , 
respectively, would only be distributed to the Distribution center in the destination region 
designated as "Destl". 

According to another aspect of the present invention, when generating the postage 

1 5 indicia for a mail piece destined for a particular destination, in step 38 the PGD 14 generates 

one of the verification keys and its corresponding key ID from the set of keys assigned to its 
group based on the particular destination. By requiring the PGD 14 to generate the 
verification key, rather than distributing the verification key to the PGD 14, a perpetrator 
cannot infiltrate the PGD 14 and copy the verification key. The PGD 14 then uses the 

20 generated verification key to create a digital signature for the indicia using any well-known 

message authentication code (MAC) function, and digitally signs the indicia by including 
the digital signature and the generated key ID on the indicia in step 40. 

When the mail is received at the destination region, the indicia is verified using the 
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key ID from the indicia, and the verification keys received from the KDC 24, to compute a 
new digital signature for the indicia, and by comparing the computed digital signature with 
the digital signature on the indicia in step 42. 

FIG. 4 is a flow chart illustrating in more detail the process the KDC 24 uses to 
generate and distribute cryptographic keys for postage evidencing and verification in 
accordance with the present invention. The KDC 24 begins by creating a master secret key 
25, K, and a set of secret keys 27, and assigns each secret key, Ki, to one of the PDG groups, 
G,-, in step 52. 

The KDC 24 in step 54 also generates and assigns a set of n verification keys, 
V® est J - l v ..,/2 , for each PGD group G i9 where each of the verification keys is calculated as 
a function of a respective destination region. In a preferred embodiment, each postage 
verification key Vi Dest is computed as a one-way function of the PGD group secret key K t 
and the designation of the postal destination: 

where H may be a one-way function such as md5 (Message Digest 5) or sha-1 (Secure Hash 
Algorithm- 1), and Dest is a designation of the destination region, which in a preferred 
embodiment, is the first three digits of the destination ZIP code or a first few characters of 
the postal code. 

After generating the verification keys, the KDC 24 in step 56 generates and assigns a 
set of key ID's, lf es \i = l,... 9 n , for each group, where each key ID corresponds to one of the 
verification keys assigned to that group and is also generated as a function of a respective 
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destination region. In a preferred embodiment, each key ID is computed as a one-way hash 
function of the PGD group, G h the master secret key, K, and a designation of the destination, 
Best: 

If est ^HiK.Dest.G,) 

It should be noted that Jhe size of the key ID is selected such that there are no 
collisions among the key IDs for a particular destination designation. 
According to one aspect of the present invention, the keys are distributed in such a manner 
that each PGD 14 is made unaware of which group verification key V it will use to evidence 
postage indicia. This is accomplished by transferring only the master secret key K and the 
group secret key K { to all PGD's 14 in group d in step 58. In addition, only the verification 
keys Vi Dest and Key ID's lP est generated as a function of a particular destination region are 
transferred to the corresponding distribution center in step 60, rather than transferring all of 
the groups of verification keys to all destination distribution centers. In a preferred 
embodiment, the verification keys V( Dest and indexes if* 65 * are stored in secure tables at the 
distribution centers 20. 

After all keys have been distributed, the PGDs 14 may perform the process of 
dispensing and evidencing postage indicia. 

FIG. 5 is a flow chart illustrating the process of dispensing and evidencing postage 
indicia within the postage generating devices 14 in accordance with a preferred embodiment 
of the present invention. The process begins in step 70 by receiving a master secret key K 
and a secret key K t from the KDC 24. In response to receiving a request from a user to 
generate an indicium for a mail piece destined for a particular destination Best, the indicium 
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is generated in step 72, and the verification key Vi is computed in step 74 as a function of 
the secret key K t and the destination. In a preferred embodiment, the PGD 14 computes the 
verification key Vi Dest using the function H: 

V { Dest =H(K i9 Dest) 

The PGD 14 also computes the encrypted key ID lP est as a function of the 
destination in step 76. In a preferred embodiment, the PGD 14 computes the key ID I; Dest 
using its assigned group designation Gy, the master secret key K shared between all postage- 
generating devices, and the designation of the postal destination Dest: 

If est = HiK^DestiG;) 

The PGD 14 evidences the indicia in step 78 by creating a digital signature for the 
indicia using the verification key vP est and digitally signs the indicia by including the digital 
signature and the computed index lP est on the indicia. The mail piece bearing the postage 
indicia is now ready for mailing and subsequent verification. 

FIG. 6 is a flow chart illustrating the process of verifying postage indicia at a 
plurality of postal distribution centers in accordance with the present invention. First, in 
step 90 each of the destination distribution centers 20 receives from the KDC 24 a set of 
verification keys V l Dest and the key ID's lP est that were generated as a function of the 
destination region the distribution center 20 services. In a preferred embodiment, the keys 
are delivered over the Internet and stored in a secure table. 
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In response to receiving a mail piece, each of the distribution centers 20 determines 
the mail piece's destination region in step 92. If the distribution center is not within the 
destination region, then the distribution transfers the mail piece to the destination 
distribution center 20b within the destination region in step 94. 

5 If the distribution center is within the destination region, then the distribution center 

begins verifying the postage indicia by reading the digital signature and the key ID from the 
indicia in step 96. The key ID read from the indicia is then used to retrieve the 
corresponding verification key that was used to create the digital signature from the table 
containing the verification keys in step 98. The retrieved verification key is then used to 

10 compute a new digital signature from the indicia, and the computed digital signature is then 

compared with the digital signature from the indicia to verify the indicia in step 100. 

In accordance with a second embodiment of the present invention, the verification 
keys and the key ID's are computed as a function of the originating distribution region, 
rather than the destination region. In this embodiment, the each distribution center 20 still 

15 receives the verification keys computed as a function of the region the distribution center 

services, but the PDGs 14 compute their verification keys based on the originating region 
where they are located (e.g., the zip code of the return address), and verification of the 
postage indicia is performed at the originating distribution center where the mail is 
deposited. 

20 In accordance with a third embodiment of the present invention, the evidencing and 

verification system may also be used for issuing and evidencing any indicia indicating the 
value of goods and/or services, such as tickets, coupons, and gift certificates, for instance. 
In one embodiment, an indicia generating device generates and prints indicia on a media that 
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is to be received at various predetermined destinations. For example, the key distribution 
center 24 may provide cryptographic keys to a chain of movie theaters, for instance. In this 
system, the key distribution could service the movie theater chain and issue separate keys for 
different venues. The operator of each local movie theater could download new keys from 
the key distribution center 24 periodically (e.g., everyday). La turn, moviegoers having 
access to a PGD 14 would then download the master secret key and the secret key for their 
device group from the local movie theater via the Internet. After receiving the keys, the 
PGD 14 would print and evidence movie tickets, and each movie theater would perform the 
verification function for verifying the tickets. 

Thus, the present invention is applicable to generating and evidencing indicia of 
value for any media that is to be received at establishments associated with geographic 
designations, such as addresses and zip codes. 

The indicia evidencing and verification system in accordance with the present 
invention offers significant advantages over prior methods for verifying cryptographic 
postage evidencing. One advantage is that the verification center is no longer a single point 
of failure in the postal system, since the verification center does not contain all the 
verification keys. Because the present invention performs verification only at destination 
distribution centers 20b and encrypts the keys as a function of the destination, even if a 
destination center 20b were broken into, the perpetrator would only be able to forge postal 
indicia for mail pieces destined for the particular destination. Security is not as tight in the 
second preferred embodiment, however, where the keys are encrypted as a function of the 
origin and verification is performed at the originating distribution centers 20a, because if an 
originating distribution center 20a were broken into, the perpetrator would be able to forge 
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postal indicia for all mail pieces as long as every mail piece was mailed from that particular 
originating distribution center 20a . 

Another advantage is that since the PGD 14 encrypts the key ID and sends the key 
ID along with the verification key on the postage indicia, even if a perpetrator were to crack 
a verification key, the perpetrator would still have a problem identifying which verification 
key was obtained. In order to fbrge the indicia, the perpetrator must possess the secret key 
that the PGD 14 used to compute the key ID, and the verification key itself. This means that 
the perpetrator must possess two secret keys rather one in order to forge the postage indicia. 
The present invention has been described in accordance with the embodiments shown, and one 
of ordinary skill in the art will readily recognize that there could be variations to the 
embodiments and any variations would be within the spirit and scope of the present invention. 

In addition, software written according to the present invention may be stored on a 
computer-readable media, such as a removable memory, or transmitted over a network, and 
loaded into the key distribution center computers, the user's PC, the PGD, and distribution 
center computers for execution. Accordingly, many modifications may be made by one of 
ordinary skill in the art without departing from the spirit and scope of the appended claims. 
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CLAIMS 



What is claimed is: 



1 1 A method for dispensing and evidencing indicia by an indicia generating device in a 

2 system having a plurality of indicia generating devices that have been divided into n groups, 

3 each of the indicia generating devices for generating and printing indicia on a media that is 

4 to be received at a plurality of establishments, wherein the establishments are associated 

5 with different geographic designations, the method comprising the steps of: 

6 (a) receiving a plurality of verification keys, wherein each one of the received 

7 verification keys is encrypted as a function of a respective geographic 
V e 8 designation; 

. " 9 (b) receiving a plurality of key IDs, wherein each one of the key IDs is 

~; -10 associated with one of the verification keys and is encrypted as a function of 

fill the same geographic designation used to encrypt the corresponding 

-=512 verification key; 

13 (c) in response to receiving a request to generate an indicium for a media 

14 destined for a particular one of the establishments, evidencing the indicium 

15 by; 

1 6 (i) generating one of the verification keys and the corresponding key ID 

17 assigned to indicia generating device's group based on the 

1 8 geographic designation associated with the particular establishment, 

19 and 
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20 (ii) using the generated verification key to create a digital signature, and 

2 1 digitally signing the indicia by including the digital signature and the 

22 generated key ID in the indicia. 
1 

1 2 The method of claim 1 further including the steps of: 

2 receiving a master secret key and a secret key; and 

3 and generating the verification keys and the key IDs assigned to the group using the 

4 master secret key and a secret key. 



1 3 The method of claim 2 further including the step of generating and printing indicia for 

2 postage on a mail piece that is to be received at a plurality of distribution centers. 

1 4 The method of claim 4 further including the step of verifying the indicia at a destination 

2 distribution center. 

1 5 The method of claim 4 further including the step of verifying the indicia at an originating 

2 distribution center. 

1 6 The method of claim 3 further including the step of using zip codes to represent the 

2 geographic designations. 

1 7 The method of claim 1 further including the step of generating and printing indicia for 

2 tickets. 
1 
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1 8 The method of claim 1 further including the step of distributing to each one of the 

2 establishments, the verification keys and the key ID's that were encrypted as a function of 

3 the geographic designation associated with the establishment. 
1 

1 9 The method of claim 8 further including the step of verifying the indicia upon receipt at 

2 the particular establishment by using the key ID on the indicia and the distributed 

3 verifications keys to compute a digital signature, and comparing the computed digital 

4 signature with the digital signature on the indicia. 

1 

O 1 10 A computer readable media containing program instructions for dispensing mid 

*;f 2 evidencing indicia by an indicia generating device in a system having a plurality of indicia 

3 generating devices that have been divided into n groups, each of the indicia generating 

I'* 4 devices for generating and printing indicia on a media that is to be received at a plurality of 

?;i 5 establishments, wherein the establishments are associated with different geographic 

£3 6 designations, the instructions for: 

C 2 7 (a) receiving a plurality of verification keys, wherein each one of the received 

8 verification keys is encrypted as a function of a respective geographic 

9 designation; 

10 (b) receiving a plurality of key IDs, wherein each one of the key IDs is 

1 1 associated with on of the verification keys and is encrypted as a function of 

12 the same geographic designation used to encrypt the corresponding 

1 3 verification key; 

14 (c) in response to receiving a request to generate an indicium for a media 
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1 5 destined for a particular one of the establishments, evidencing the indicium 

16 by; 

1 7 (i) generating one of the verification keys and the corresponding key ID 

1 8 assigned to indicia generating device's group based on the 

1 9 geographic designation associated with the particular establishment, 

20 and 

21 (ii) using the generated verification key to create a digital signature, and 

22 digitally signing the indicia by including the digital signature and the 

23 generated key ID in the indicia. 
1 

1 11 The computer readable media of claim 10 further including the instructions of: 

2 receiving a master secret key and a secret key; and 

3 and generating the verification keys and the key IDs assigned to the group using the 

4 master secret key and a secret key. 
1 

1 12 The computer readable media of claim 1 1 further including the instruction of generating 

2 and printing indicia for postage on a mail piece that is to be received at a plurality of 

3 distribution centers. 
1 

1 13 The computer readable media of claim 12 further including the instruction of verifying 

2 the indicia at a destination distribution center. 
1 

1 14 The computer readable media of claim 12 further including the instruction of verifying 
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2 the indicia at an originating distribution center. 
1 

1 1 5 The computer readable media of claim 1 1 further including the instruction of using zip 

2 codes to represent the geographic designations. 
1 

1 1 6 The computer readable media of claim 1 0 further including the instruction of generating 

2 and printing indicia for tickets. 
1 

1 1 7 The computer readable media of claim 1 0 further including the instruction of distributing 

2 to each one of the establishments, the verification keys and the key ID's that were encrypted 

3 as a function of the geographic designation associated with the establishment. 
1 

1 1 8 The computer readable media of claim 1 7 further including the instruction of verifying 

2 the indicia upon receipt at the particular establishment by using the key ID on the indicia 

3 and the distributed verifications keys to compute a digital signature, and comparing the 

4 computed digital signature with the digital signature on the indicia. 
1 

1 1 9 An indicium generating device for generating and printing indicia on a media that is to 

2 be received at a plurality of establishments, wherein the establishments are associated with 

3 different geographic designations, comprising: 

4 means for receiving a plurality of verification keys, wherein each one of the received 

5 verification keys is encrypted as a function of a respective geographic designation; 

6 means for receiving a plurality of key IDs, wherein each one of the key IDs is 
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7 associated with one of the verification keys and is encrypted as a function of the same 

8 geographic designation used to encrypt the corresponding verification key; 

9 means for generating and evidencing an indicium for a media destined for a 

10 particular one of the establishments, including means for generating one of the verification 

1 1 keys and the corresponding key ID assigned to indicia generating device's group based on 

12 the geographic designation associated with the particular establishment, and means for 

13 creating a digital signature using the generated verification key and for digitally signing the 

14 indicia by including the digital signature and the generated key ID in the indicia. 
1 

1 20 The indicium generating device of claim 1 9 wherein the indicium generating device 

2 further receives a master secret key and a secret key, and generates the verification keys and 

3 the key IDs using the master secret key and a secret key. 
1 

1 21 The indicium generating device of claim 20 wherein the indicium is generated and 

2 printed as postage on a mail piece that is to be received at a plurality of distribution centers. 
1 

1 22 The indicium generating device of claim 21 wherein indicia is verified at a destination 

2 distribution center. 
1 

1 23 The indicium generating device of claim 21 wherein indicia is verified at an originating 

2 distribution center. 
1 

1 24 The indicium generating device of claim 20 wherein the geographic designations 
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2 comprise zip codes. 
1 

1 25 The indicium generating device of claim 19 wherein the indicium is generated and 

2 printed for tickets. 
1 

1 26 The indicium generating device of claim 19 wherein the verification keys and the key 

2 ID f s that were encrypted as a function of the geographic designation associated with the 

3 establishment are distributed to each one of the establishments. 
1 

1 27 The indicium generating device of claim 26 wherein the indicia is verified upon receipt 

2 at the particular establishment by using the key ID on the indicia and the distributed 

3 verifications keys to compute a digital signature, and comparing the computed digital 

4 signature with the digital signature on the indicia. 
1 

1 28 A method for dispensing and evidencing postage indicia by a postage generating device 

2 (PGD) in a system having a plurality of PGDs that have been divided into n groups 

3 identified by a group designation G iy i = l v . .n, the method comprising the steps of: 



4 (a) receiving a master secret key K and a secret key K t \ 

5 (b) in response to receiving a request to generate an indicium for a mail piece 

6 destined for a particular postal destination Best, generating the indicium; 

7 (c) computing a verification key V? esi as a function of the secret key Ki and the 

8 postal destination; 

9 (d) computing a key ID Ii Dest as a function of the master secret key K and the 
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1 0 postal destination; 

1 1 (e) using the computed verification key V? 65 ' to create a digital signature for the 

12 indicia; and 

13 (f) digitally signing the indicia by including the digital signature and the 

1 4 computed key ID I t Dest on the indicia. 
1 

1 29 The method of claim 28 further including the step of computing each verification key 

2 vP est as a one-way function H of the PGD group key K t and a designation of the postal 

3 destination: 

4 V/** =H(K i9 Dest). 

1 30 The method of claim 29 further including the step of using ZIP codes to designate the 

2 postal destination. 
1 

1 3 1 The method of claim 30 further including the step of computing each of the key ID's as a 

2 one-way function H of the PGD group, G I5 the master secret key, K, and a designation of the 

3 postal destination, Dest: 

4 If* =H(K,Dest 9 G i ). 
1 
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ABSTRACT 

A method and system for dispensing and evidencing indicia by an indicia generating 
device is disclosed in a system having a plurality of indicia generating devices that have been 
divided into n groups. Each of the indicia generating devices generates and prints indicia on a 
media that is to be received at a plurality of establishments, wherein the establishments are 
associated with different geographic designations. The method and system include receiving a 
plurality of verification keys, wherein each one of the received verification keys is encrypted as a 
function of a respective geographic designation. A plurality of key IDs are also received, where 
each one of the key IDs is associated with on of the verification keys and is encrypted as a 
function of the same geographic designation used to encrypt the corresponding verification key. 
In response to receiving a request to generate an indicium for a media destined for a particular 
one of the establishments, the indicia generating device evidences the indicium by generating 
one of the verification keys and the corresponding key ID assigned to indicia generating device's 
group based on the geographic designation associated with the particular establishment, and 
using the generated verification key to create a digital signature, and digitally signing the indicia 
by including the digital signature and the generated key ID in the indicia. 
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DECLARATION AND POWFR OF ATTORNEY FDR 1 ITI1 TJV PATFMT APPf NATION 
As a below named inventor, I hereby declare that: 

My residence, post office address and citizenship are as stated below, next to my name, 

I believe that I am the original, first and sole inventor (if only one name is listed below) or an original, first and joint 
inventor (if plural names are listed below) of the subject matter which is claimed and for which a patent is sought on 
the invention entitled 



EVIDENCING INDICIA OF VALUE USING SECRET KEY CRYPTOGRAPHY 

the specification of which 

X is attached hereto. 

was filed on 

I hereby state that I have reviewed and understand the contents of the above-identified specification, including the 
claims, as amended by any amendment referred to above. I do not know and do not believe that the same was 
ever known or used in the United States of America before my invention thereof, or patented or described in any 
prped publication in any country before my invention thereof or more than one year prior to this application, that the 
safine was not in public use or on sale in the United States of America more than one year prior to this application, 
aOid said invention has not been patented or made the subject of an inventor's certificate issued before the date of 
thjf application in any country foreign to the United States of America on an application filed by me or my legal 
representatives or assigns more than twelve months prior to this application. 

I ^knowledge the duty to disclose information which is material to the examination of this application in accordance 
w|§ Title 37, Code of Federal Regulations, Section 1 .56 (a). 

I §f eby claim foreign priority benefits under Title 35, United States Code, Section 1 1 9, of any foreign application(s) 
fqn^atent or inventor's certificate listed below and have also identified below any foreign application for patent or 
ir|/f ntor's certificate having a filing date before that of the application on which priority is claimed: 

Piif r Foreign Applinat i on(s) Priority niaim^ 



(Number) (Country) (Day/Month/Year Filed) Yes No 



(Number) (Country) (Day/Month/Year Filed) Yes No 

I hereby claim the benefit under Title 35, United States Code, Section 120 of any United States application(s) listed 
below and, insofar as the subject matter of each of the claims of this application is not disclosed in the prior United 
States application in the manner provided by the first paragraph of Title 35, United States Code, Section 112, I 
acknowledge the duty to disclose material information as defined in Title 37, Code of Federal Regulations, Section 
1.56(a) which occurred between the filing date of the prior application and the national or PCT international filing 
date of this application: 



(Application Serial No,) (Filing Date) (Status-patented, pending, abandoned) 



(Application Serial No.) 



(Filing Date) 



(Status-patented, pending, abandoned) 
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I hereby appoint Joseph A. Sawyer, Jr., Reg, No, 30,801; Stephen G. Sullivan, Reg. No. 38,329; Janyce R. 
Mitchell, Reg. No. 40,095; Michele liu, Reg. No.: 44,875; Wendell J. Jones, Reg. No. P45.961 and Doretha L 
Robinson, Reg. No. 45,048, of SAWYER LAW GROUP LLP, located at 2465 E. Bayshore Rd>, Suite 406, 
Palo Alto, California 94303, telephone (650) 493-4540, as my attorneys with full power of substitution and 
revocation, to prosecute this application and to transact all business in the Patent and Trademark Office 
connected therewith. 

Address all telephone calls to Stephen G. Sullivan, at telephone number (650) 493-4540, and all 
correspondence to: 

SAWYER LAW GROUP LLP 

P.O. Box 51418 
Palo Alto, California 94303 

I hereby declare that all statements made herein of my own knowledge are true and that all statements 
made on information and belief are believed to be true; and further that these statements were made with the 
knowledge that willful false statements and the like so made are punishable by fine or imprisonment, or both, 
under Section 1001 of Title 18 of the United States Code and that such willful false statements may jeopardize 
the validity of the application or any patent issued thereon. 



Martin J. Pagel 
8515 NE 124 th Street 

Kirkland King Washington 98034 

City County State Zip 

SAME 
Germany 



f jbjll Name of sole/first inventor: 
Kfsidence Address: 

£ : 6st Office Address: 
Country of Citizenship: 



Date 



Signature 
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IN THE UNITED STATES PATENT AND TRADEMARK OFFICE 

In re Application of: 
Pagel, M. 

Serial No. Unassigned 
Filed: Herewith 

For: EVIDENCING INDICIA OF VALUE USING 
SECRET KEY CRYPTOGRAPHY 



DECLARATION CLAIMING SMALL ENTITY STATUS 
UNDER 37 CFR 1 9ffl and 1 27fcl SMAL I RUSIMFSS ^mpfbm 

I hereby declare that I am 

3 [ ] the owner of the small business concern identified below; 

£ i t [X] an official of the small business concern empowered to act on behalf of the concern 

P identified below: 

-IT NAME OF CONCERN E- St amp Corporation 

ADDRESS OF CONCERN 2051 Stierlin Court 

y Mountain View, California 94043 

I hereby declare that the above identified small business concern qualifies as a small business concern as 
defined in 13 CFR 121.3-18, and reproduced in 37 CFR 1.9(d), for purposes of paying reduced fees under 
s$tion 41(a) and (b) of Title 35, United States Code, in that the number of employees of the concern, 
iijduding those of its affiliates, does not exceed 500 persons. For purposes of this statement, (1) the 
nWnber of employees of the business concern is the average over the previous fiscal year of the concern of 
the persons employed on a full-time, part-time or temporary basis during each of the pay periods of the fiscal 
years, and (2) concerns are affiliates of each other when either, directly or indirectly, one concern controls or 
has the power to control the other, or a third party or parties controls or has the power to control both. 

I hereby declare that rights under contract or law have been conveyed to and remain with the small business 
concern identified above with regard to the invention entitled EVIDENCING INDICIA VALUE USING 
SECRET KEY CRYPTOGRAPHY by inventor(s) Martin J. PaqpJ, described in application filed herewith. 

The rights held by the above identified small business concern are not exclusive, each individual, concern or 
organization having rights to the invention is listed below* and no rights to the invention are held by any 
person, other than the inventor, who could not qualify as a small business concern under 37 CFR 1 .9(d) or 
by any concern which would not qualify as a small business concern under 37 CFR 1 .9(d) or a nonprofit 
organization under 37 CFR 1 .9(e). 

"NOTE: Separate verified statements are required from each named person, concern or organization 
having rights to the invention averring to their status as small entities. (37 CFR 1 .27). 
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I acknowledge the duty to file, in this application or patent, notification of any change in status resulting in 
loss of entitlement to small entity status prior to paying, or at the time of paying, the earliest of the issue fee 
or any maintenance fee due after the date on which status as a small entity is no longer appropriate (37 
CFR 1.28(b)) 

I hereby declare that all statements made herein of my own knowledge are true and that all statements 
made on information and belief are believed to be true; and further that these statements were made with 
the knowledge that willful false statements and the like so made are punishable by fine or imprisonment, or 
both, under section 1001 of Title 18 of the United States Code, and that such willful false statements may 
jeopardize the validity of the application, any patent issuing thereon, or any patent to which this declaration is 
directed. 



NAME OF PERSON SIGNING: Martin J. Page! 

TITLE OF PERSON OTHER THAN OWNER: Chief Technical Officer 

ADDRESS OF PERSON SIGNING: 2051 Stierlin Court 

Mountain View, California 94043 



Signature 



6 f^o/o^ 

Date 



